Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json)
Hash identifier: OPMfskXd33kr9x+2cBli07bXLG9zaSavoCE3Ecy761s=
Subject key identifier: 06:54:4D:7B:A7:E0:68:31:8A:6B:1A:EA:FC:89:22:13:3E:37:75:36
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 0198D4E071C205CAC3E9177FDCCCDA860136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
Manifest number: 1328
Signing time: Sat 23 Aug 2025 03:02:15 +0000
Manifest this update: Sat 23 Aug 2025 03:02:15 +0000
Manifest next update: Sun 24 Aug 2025 03:02:15 +0000
Files and hashes: 1: 3uOrqvmP8Ja1Ais3wLBFc-Yv8js.roa (hash: exOhjbpn5m/SyHb+kmTmnk1GW2qg2u8lsLmmerL5o9w=)
2: IzP3cDAX9aykSDzKdoH0u3AyA2M.roa (hash: NC8YDjUxW5EM3pV7QmdgO/vAJ9HwNpXuNP3EpqENObk=)
3: f2dJVu8muGYFnZFPcMivMl98KP8.roa (hash: rWmOSQ2QhYKl4L1IyTfTDLKWAGfQI+Kz8vdUqnsATxs=)
4: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: VoYuVoYKlOT/w3WtFn06foF2to7Jwx6HWz1z0KvHWuI=)
5: svOlfPLlFDJ0sGLcz6b_IG_H3W0.roa (hash: zsvLBGGbQT+oIT4diXH9qGrVZIYbNUKP7yL6prMLg/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:71:c2:05:ca:c3:e9:17:7f:dc:cc:da:86:01:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Aug 23 03:02:15 2025 GMT
Not After : Aug 24 03:02:15 2025 GMT
Subject: CN=06544d7ba7e068318a6b1aeafc8922133e377536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:fa:97:18:79:c0:28:d1:5f:45:cc:76:59:
c7:0f:01:12:f0:91:78:30:a9:c0:2e:95:43:d5:5a:
5c:1a:00:03:ca:6e:66:58:70:95:07:58:c2:43:5b:
b1:3e:72:43:2e:31:b2:fb:ae:5c:ca:b3:82:60:c7:
3c:78:79:e6:a0:91:24:12:22:5d:c7:0a:fc:26:29:
12:cb:94:54:94:1c:ef:28:be:44:88:75:a5:75:7e:
9d:46:a5:9c:a4:ca:96:25:2e:60:de:05:36:a9:26:
f9:d9:77:5a:01:ce:25:64:33:d1:53:53:be:79:84:
94:fc:74:0f:c4:bb:90:b1:57:0c:98:44:29:6e:b2:
9d:1b:f0:4d:87:40:c5:3e:1e:1e:ca:3b:5a:e3:eb:
23:34:06:6e:d8:5d:73:32:a6:68:a1:65:ff:fe:2c:
f3:fa:82:90:1b:e1:3b:35:d1:37:d5:cf:1d:92:ca:
00:1c:1d:c1:a4:0d:c4:28:63:6f:78:b1:0e:e8:7b:
19:3d:74:c2:fd:05:8e:8e:64:cc:32:97:e1:a8:c5:
40:c2:20:50:59:40:0b:e4:3a:42:ca:4e:3f:21:1d:
a1:af:30:59:d8:60:00:fe:e7:8f:b6:1c:0d:00:34:
83:bc:8b:c2:df:9e:24:00:d2:12:8a:56:eb:6e:0c:
84:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:54:4D:7B:A7:E0:68:31:8A:6B:1A:EA:FC:89:22:13:3E:37:75:36
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:1d:d3:a3:cb:c4:75:14:c4:d6:11:86:fa:93:35:77:24:30:
7d:0d:1e:00:4c:c4:13:0f:7f:2c:ea:52:37:fb:a2:00:90:d0:
40:b0:79:4c:e0:f9:06:f6:92:24:15:d0:14:9c:3a:07:40:5a:
13:4d:29:01:e0:51:57:e1:66:68:14:28:f7:d8:f3:3b:df:23:
a3:fa:97:aa:27:5c:da:39:41:45:67:0d:f1:28:61:3e:78:5c:
46:86:bc:6a:a5:a9:6a:de:35:b9:7b:1c:17:d1:f4:8f:bc:e1:
6a:30:05:72:6f:0c:fa:80:dc:e4:13:1b:22:0c:df:9f:fe:50:
08:58:cf:72:5b:4a:66:17:bf:02:bf:5d:ac:b8:58:0e:b4:7f:
38:3f:e5:91:38:64:96:68:18:c9:bc:c7:d8:39:a4:cc:19:08:
d7:07:6a:f0:c8:0d:91:c9:46:58:5f:39:19:75:83:fe:75:41:
c6:50:0a:14:4e:12:c6:0d:f2:42:ed:52:7a:90:0f:69:e6:4e:
d1:5d:f6:1b:78:7e:15:4c:14:4d:42:75:b7:94:e8:7b:bd:e7:
f5:26:1f:b0:ed:fe:0a:5b:be:67:3f:29:95:1b:4c:68:18:c4:
cc:a4:47:77:bd:f3:aa:f2:85:c1:7e:a4:40:a4:c1:f2:4b:df:
0b:b3:94:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:30:32 2025 by rpki-client